Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
File: 3keU2fyrI-wF3d1QSKP8cgQAKio.mft (raw, json)
Hash identifier: FOGdCZwUKEGpZGA+dGm8SwAry7Ydd6LDLQH/1P6DSuc=
Subject key identifier: 5C:EE:D2:F4:A6:76:31:A3:BC:85:D7:A2:EB:A4:60:06:AC:59:64:50
Authority key identifier: DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
Certificate issuer: /CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Certificate serial: 019746302C61CBD9100EEAB23452CBE0B837
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
Manifest number: 0EAA
Signing time: Fri 06 Jun 2025 17:00:51 +0000
Manifest this update: Fri 06 Jun 2025 17:00:51 +0000
Manifest next update: Sat 07 Jun 2025 17:00:51 +0000
Files and hashes: 1: 3keU2fyrI-wF3d1QSKP8cgQAKio.crl (hash: Fr31+R2A3bxyRn6rFqEGi3jdRIY+sqwnjIHh/ydZ+fs=)
2: ZK9gU4FBN8KUQTPHGhgGaXPIWjk.roa (hash: YFHfAWvmuV1pyKRAlUfEUWxi+ZLKrTZD/d9TC0Av1JQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:2c:61:cb:d9:10:0e:ea:b2:34:52:cb:e0:b8:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Validity
Not Before: Jun 6 17:00:51 2025 GMT
Not After : Jun 7 17:00:51 2025 GMT
Subject: CN=5ceed2f4a67631a3bc85d7a2eba46006ac596450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ea:b6:c6:bb:cf:88:a0:4a:0b:2c:dd:4d:67:
36:5b:76:f8:8d:5c:22:8c:77:fe:67:fe:6a:da:88:
5a:ee:2f:8d:5f:cd:e9:61:93:d1:d1:29:04:95:e3:
ba:e0:81:00:c0:61:c2:5f:24:d8:15:26:44:3c:56:
cf:6f:cc:8e:1a:4c:11:30:26:53:ad:96:43:7a:28:
17:31:c4:d3:e6:e4:48:a2:bc:b2:4c:56:1b:d2:ad:
dc:9a:b3:12:35:bf:59:11:64:be:50:3e:04:e1:78:
69:0a:c7:5c:d9:1e:62:cc:8e:ee:32:8b:47:87:f7:
d0:b7:2c:1c:e2:b1:b7:0a:2e:05:f4:90:a7:f6:10:
d8:47:7c:8e:7a:75:c6:b1:bd:c6:05:f6:50:e1:a1:
f1:38:62:2c:e5:c1:b5:a7:d4:30:1d:88:74:31:27:
99:e9:0b:de:41:dc:8c:ea:56:f5:e7:40:b7:b1:d3:
cd:8f:64:92:33:4d:b5:00:0c:91:59:d4:32:7f:33:
e2:5f:a5:d4:ea:20:80:86:87:75:47:08:50:ff:2b:
eb:fe:8e:55:b0:57:a8:b9:95:25:0a:21:2f:8b:b5:
9b:55:82:51:7c:07:8d:64:49:39:67:45:dc:2d:6c:
b1:db:e2:99:da:df:30:f6:71:d9:f5:0a:4f:ac:19:
19:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:EE:D2:F4:A6:76:31:A3:BC:85:D7:A2:EB:A4:60:06:AC:59:64:50
X509v3 Authority Key Identifier:
keyid:DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:d8:f7:9a:f1:74:27:52:7d:46:dc:32:3b:0a:63:14:06:ff:
a2:11:e9:64:a3:a8:f2:72:7e:30:84:8d:90:87:9a:a8:27:5c:
dc:87:55:9b:61:9c:b0:fc:10:43:85:18:32:d5:1f:e2:d7:0a:
55:44:98:38:73:89:37:db:d4:c0:95:b0:a9:91:6f:e7:d7:72:
18:15:ef:01:50:96:7e:72:0a:78:e2:d5:a4:0a:df:13:10:47:
49:2a:dd:55:18:36:5c:d1:61:33:44:f6:63:45:0c:18:6e:31:
cc:eb:8d:ba:17:65:c4:2c:0c:77:40:7a:e8:cb:5f:10:c2:06:
74:ee:b9:68:22:c3:69:d9:ac:b5:bd:0e:74:4f:73:c6:70:77:
15:4e:ed:c0:c7:74:44:a7:9b:a2:9c:22:41:ef:f5:6e:75:6d:
e7:1d:df:a2:c1:86:f6:17:45:53:e5:61:dc:2d:3b:dc:a9:c5:
e9:0f:e0:bb:a8:78:4b:94:d7:a3:86:a8:73:a8:58:e7:6e:f9:
66:33:64:3c:25:93:55:cd:ac:31:f3:86:2b:ad:2a:dc:a0:ab:
a3:63:c1:df:a6:85:6f:14:cd:e7:dd:0a:e1:99:1f:ad:a3:51:
79:68:d7:b9:70:0f:de:a0:af:e4:5a:0c:e5:d4:0d:14:81:e0:
15:2c:96:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:08:13 2025 by rpki-client